How do I configure AOS-Switch port access security using an external authentication server?
ASE Link: Go to the solution
This solution will simplify configuration of port access control on an ArubaOS-Switch device, with access controls provided either locally or by an external authentication server (e.g. ClearPass Policy Manager, RADIUS, etc).
Minimum Software Versions Required
Varies by feature and switch model; see the Management (Captive Portal for ClearPass), Security and Application sections in the ArubaOS-Switch Software Feature Support Matrix.
This solution covers port access security features available on supported ArubaOS-Switch models, including local credentials, 802.1X, MAC-based, Web-based, local MAC authentication, and Captive Portal. For each method, configuration options for required and commonly-used optional features are provided in the workflow.
Tested on a 3810M running KB.16.02.0011 and a 2920 running WB.16.02.0012.
For switches: none required. Standard license requirements apply for authentication servers (ClearPass, RADIUS, etc).
- HPE ArubaOS-Switch Access Security Guide K/KA/KB.16.01
- HPE ArubaOS-Switch Advanced Traffic Management Guide K/KA/KB.16.01
- ClearPass 6.6 Deployment Guide
- ClearPass Policy Manager 6.6 User Guide